CVE-2015-5374

Currently unrated

Key Information:

Vendor
Siemens
Status
Siprotec Firmware
Vendor
CVE Published:
18 July 2015

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC🟣 EPSS 20%

Summary

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02. Specially crafted packets sent to port 50000/UDP could cause a denial-of-service of the affected device. A manual reboot may be required to recover the service of the device.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2015-5374-DoS-PoC
Created by can

References

https://www.siemens.com/cert/pool/cert/siemens_security_a...
x_refsource_CONFIRM
http://www.siemens.com/innovation/pool/de/forschungsfelde...
x_refsource_CONFIRM
https://www.exploit-db.com/exploits/44103/
exploitx_refsource_EXPLOIT-DB

EPSS Score

20% chance of being exploited in the next 30 days.

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.